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Amendments to the Claims : 

The following listing of claims will replace all prior versions, and listings, of claims in 
the application: 

1 . (Currently Amended) A method for securing communication over a network 
medium between at least two devices including a first device and a second device , 
comprising: 

transmitting pr e authentication information from a first d e vic e to a s e cond 

devic e ov e r a location limited channel; and 

using th e pr e authentication information s e cured by the second device to 

auth e nticat e the communication from the first device 

receiving over a location limited communication channel, by the second 

device, public authentication information transmitted by said first device, said location 
limited communication channel being difficult to actively attack without detection, wherein 
said publ ic authentication information commits said first device to possession of secret 
information; 

receiving a communication from said first device over said network medium. 

authenticating said co mmunication at said second device wherein said second 

device requires said first device to authenticate to said second device that said first device 
actually possesses said secret information . 

2. (Currently Amended) The method of claim 1, wherein transmitting pro - 
authentication information includes sending a digest of an authonticator from the first device 
to th e s e cond d e vice said public authentication information is a one-way function of an 
authenticator . 
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3. (Currently Amended) The method of claim 2, claim L wherein s e nding th e 
dig e st of th e auth e nticator includ e s sending a public k e y, or a dig e st of th e said public 
authentication information is a public key or a one-way function of said public key. 

4. (Currently Amended) The method of claim 2, claim 1, wherein s e nding the 
digest of the authenticator includ e s s e nding a dig e st of a s e cr e t said public authentication 
information is a one-way function of said secret information known to said first device . 

5. (Currently Amended) The method of claim 3, claim L wherein using th e pr e 
auth e ntication information by th e s e cond d e vic e to authenticat e th e communication ov e r th e 
n e twork m e dium includ e s using a key exchange protocol in the authenticating said 
communication uses a key exchange protocol over said network medium. 

6-7. (Canceled) 

8. (Currently Amended) The method of claim 1, wherein said location limited 
communication channel is an infra-red furth e r comprising using an infra r e d chann e l a s the 
location limit e d c hannel . 

9. (Currently Amended) The method of claim 1, further comprising using an 
audio chann e l as th e location limit e d wherein said location limited communication channel is 
an audio channel. 

10. (Currently Amended) A method for securing a communication over a network 
medium among b etween a group of devices, comprising: each of said group of devices 
associated with its own public authentication information, the method comprising designating 
a group manager from said group of devices wherein said group of devices includes said 
group manager and a plurality of other devices, said plurality of other devices comprising a 
first device and a second device; performing a key exchange protocol by said group manager, 
said key exchange protocol being dependent on an established trust relationship between said 
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group of devices; and securing said communication over said network medium; wherein the 
improvement comprises: 

sending, by said group manager over a location limited communication 

channel, public authentication information associated with said group manager to said first 
device and said second device, wherein said public authentication information commits said 
group manager to possession of group manager secret information, said location limited 
communication channel being difficult to actively attack without detection; 

receiving, by said group manager over said location limited communication 

channel, public authentication information associated with said first device and public 
authentication information associated with said second device; wherein said public 
authentication information associated with said first device commits said first device to 
possession of first device secret information and wherein said public authentication 
information associated with said second device commits said second device to possession of 
second device secret information, whereby sending and receiving over said location limited 
communication channel establishes said established trust relationship; 

attempting to authenticate, by said group manager each of said plurality of 

other devices; the attempting to authenticate by said group manager comprising said group 
manager requesting said first device to authenticate that said first device actually possesses 
said first device secret information and said group manager requesting said second device to 
authenticate that said second device actually possesses said second device secret information; 
and 

attempting to authenticate, bv each of said plurality of other devices, said 

group manager; the attempting to authenticate by each of said plurality of other devices 
comprising said first device requesting said group manager to authenticate that said group 
manager actually possesses said group manager secret information and said second device 
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requesting said group manager to authenticate that said group manager actually possesses said 
group manager secret information d es ignating at least on e d e vic e of th e group as a group 
manag e r; 

e xchanging pr e authentication information b e tw ee n the group manag e r and 

oth e r d e vic e s of th e group using a broadcast location limit e d chann e l; and 

using th e e xchang e d pr e auth e ntication information s e cur e d by th e group 

manager and th e other devic e s to auth e nticate th e communication ov e r th e n e twork m e dium . 

11. (Currently Amended) The method of claim 10, further comprising 
distributing, by said group manager, group key information over said network medium to said 
plurality of other devices compris e s using th e n e twork m e dium to distribut e a group k e y 
information from the group manag e r to th e other d e vic e s in th e group . 

12. (Currently Amended) The method of claim 10, further comprising: 
receiving a new device into the -said g roup of devices; 

exchanging pre auth e ntication information b e tw ee n th e group manager and • 

oth e r devices of the group using a broadcast location limit e d channel; and 

using the e xchanged pre auth e ntication information s e cur e d by the group 

manag e r and th e oth e r d e vic e s to authenticate the communication ov e r th e network m e dium. 

sending, by said group manager over said location limited communication 

channel, said public authentication information associated with said group manager to said 
new device: 

receiving, by said group manager over said location limited communication 

channel, public authentication information associated with said new device; wherein said 
public authentication information associated with said new device commits said new device 
to possession of new device secret information; and 
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attempting to authenticate, by said group manager, said new device, the 

attempt comprising requesting said new device to authenticate that said new device actually 
possesses said new device secret information whereby said new device is included in said 
established trust relationship. 

13. (Canceled) 

14. (Currently Amended) The method of claim 13, claim 10, furth e r compri se s 
using th e n e twork medium to distribut e a now group k e y information from the group manag e r 
to th e r e maining on e s of the devic e s of th e group wherein the group of devices includes a 
third device, and wherein the method further comprises: 

detecting when said third device leaves said group of devices; and 

using said network medium to distribute a new group key information from 

said gro up manager to said plurality of other devices remaining in said group of devices . 

15. (Currently Amended) A method of authenticating a communication over a 
network medium among a group of devices , comprising: 

e xchanging pr e auth e ntication information between e ach devic e and oth e r 

d e vic e s in the group over a broadcast location limited channel; 

using the pr e authentication information of a selected device for 

communication that i s s e cured by a communicating device to authenticat e the communication 
ov e r th e network medium with th e s e l e cted device, including a first device and a second 
device, the method comprising performing a key exchange protocol between said group of 
devices, said key exc hange protocol being dependent on an established trust relationship 
between said group of devices, and securing said communication over said network medium, 
wherein the improvement comprises: 

sending, by each of said group of devices over a location limited 

communication channel, public authentication information associated with said each of said 
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group of devices to every other of said group of devices, wherein said public authentication 
information associated with said each of said group of devices commits said each of said 
group of devices to possession of secret information corresponding thereto, said location 
limited communication channel being difficult to actively attack without detection; 

receiving, by said each of said group of devices over said location limited 

communication channel, said public authentication information associated with said each of 
said group of devices from every other of said group of devices, whereby sending and 
receiving over said location limited communication channel establishes said established trust 
relationship; and 

attempting to authenticate, by said each of said group of devices, that every 

other of said group of devices possesses respective secret information thereof. 

16. (Canceled) 

1 7. (Currently Amended) The method claim 16, claim 15, wherein e xchanging 
pr e authorization information comprises using a Diffie Hollman k e y exchang e protocol as the 
group said group said group key exchange protocol is a Diffie-Hellman key exchange 
protocol. 

18. (Currently Amended) A d e vic e system for securing a communication over a 
network medium, the deviee- system comprising: 

a location limit e d chann e l r e c e iv e r/transmitter to rec e ive/transmit pro 
auth e ntication information from/to first device and a second d e vic o ; device. wherein 

the second device receives, over a location limited communication channel 

public authentication information transmitted by said first device, said location limited 
communication cha nnel being difficult to actively attack without detection, wherein said 
public authentication information commits said first device to possession of secret 
information. 
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a processor to process th e pr e authentication information; and the second 

device receives a communication from said first device over said network medium, and 

a wir e l e ss link r e c e iv e r/transmitt e r to r e c e iv e /transmit communication from/to 

a s e cond devic e , wh e rein the proc e ssor auth e nticates th e communication using the pr e 
auth e ntication information 

the second device authenticates the communication by requiring the first 

device to authenticate to said second device that said first device actually possesses said 
secret information . 

19. (Currently Amended) The d e vic e system of claim 18, further comprising: 

a memory that stores an authentication application used by the-aj>rocessor to 
authenticate the communication. 

20. (Currently Amended) The device system of claim 18, wherein the location 
limit e d chann e l r e c e iv e r/transmitt e r first device includes a infra-red receiver/transmitter. 

2 1 . (Currently Amended) The d e vic e system of claim 1 8, wherein the location 
limited chann e l r e c e iv e r/transmitt e r first device includes an audio receiver/transmitter. 

22. (Currently Amended) The device -system of claim 18, wherein the 
auth e ntication application includ e s second device authenticates the communication using a 
public-key-based key exchange protocol. 

23. (New) A method for securing communication over a network medium 
between at least two devices including a first device and a second device, comprising: 

transmitting, from said first device, public authentication information over a 
location limited communication channel, said location limited communication channel being 
difficult to actively attack without detection, wherein said public authentication information 
commits said first device to possession of secret information; 
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transmitting a communication from said first device to said second device over 
said network medium; and 

demonstrating to said second device that said first device actually possesses 
said secret information. 

24. (New) The method claim 1, the method further comprising: 

receiving over said location limited communication channel, by the first 
device, a second public authentication information transmitted by said second device, wherein 
said second public authentication information commits said second device to possession of a 
second secret information; 

receiving a second communication from said second device over said network 

medium; and 

authenticating said second communication at said first device wherein said 
first device requires said second device to authenticate to said first device that said second 
device actually possesses said second secret information. 



